A method and a device for a reaction-free and integrity-protected synchronization of log data between at least one first network and a second network is provided. The log data is copied by means of a monitoring device upon being transmitted from devices to a first log server in the first network. Metadata of the log data is additionally generated in a first managing unit, the metadata including time information, integrity information, origin information, and/or completeness information. The copied log data and the corresponding metadata are transmitted to the second network via a unidirectional coupling unit in a reaction-free manner. The lot data is checked and ordered chronologically in the second network using the metadata. Thus, a synchronized copy of the log data from the first network is promptly provided in the second network.
Legal claims defining the scope of protection. Each claim is shown in both the original legal language and a plain English translation.
2. The method as claimed in claim 1, wherein changes in at least one of the log data and in the associated metadata in comparison with the previously sent log data and metadata are continuously detected in the first network and just the changes are transmitted to the second network.
This invention relates to efficient log data transmission in networked systems, addressing the problem of bandwidth and storage overhead when transferring large volumes of log data between networks. The method involves continuously monitoring log data and its associated metadata in a first network to detect changes compared to previously transmitted data. Only the detected changes, rather than the entire log dataset, are then transmitted to a second network. This selective transmission reduces the amount of data transferred, conserving bandwidth and storage resources while ensuring the second network receives only the most recent updates. The system may also include a log data generator in the first network that produces the log data and metadata, and a log data receiver in the second network that processes the transmitted changes. The method ensures that the second network maintains an up-to-date version of the log data without unnecessary data transfers, improving efficiency in distributed logging systems. The approach is particularly useful in environments where log data is frequently updated, such as in cloud computing, distributed databases, or real-time monitoring systems.
3. The method as claimed in claim 1, wherein the checked and chronologically organized copy of the log data is temporarily stored in the second network.
4. The method as claimed in claim 1, wherein the checked and chronologically organized copy of the log data is forwarded to a log server for the second network.
5. The method as claimed in claim 1, wherein a cryptographic checksum for at least one of the copied log data and the metadata is created in the first network and is transmitted to the second network with the log data and metadata.
This invention relates to secure log data transfer between networks, addressing the challenge of ensuring data integrity and authenticity during transmission. The method involves copying log data and associated metadata from a first network to a second network. A cryptographic checksum is generated for at least one of the copied log data or the metadata within the first network. This checksum is then transmitted alongside the log data and metadata to the second network. The checksum serves as a verification mechanism to confirm that the data has not been altered during transmission, providing a tamper-evident record. The metadata may include timestamps, source identifiers, or other contextual information that further enhances data traceability. The cryptographic checksum is computed using a secure hash function, ensuring that any unauthorized modifications to the data would result in a mismatched checksum upon verification. This approach is particularly useful in environments where log data must remain reliable and unaltered, such as in cybersecurity monitoring, compliance auditing, or forensic investigations. The method ensures that the integrity of the log data is preserved throughout the transfer process, mitigating risks of data corruption or tampering.
6. The method as claimed in claim 1, wherein the time information in the metadata comprises a serial log identification number and/or a first timestamp for the time at which at least one of the log data are copied and a second timestamp for the time at which the copied log data are transmitted to the second network.
7. The method as claimed in claim 1, wherein the time information in the metadata is formed independently of a system time of a device in the first network.
This invention relates to a method for managing time information in metadata within a networked system. The problem addressed is ensuring accurate and reliable time synchronization in distributed systems where devices may not share a common system time or rely on external time sources. The method involves generating time information in metadata that is independent of the system time of any device in the first network. This ensures that the time information remains consistent and trustworthy even if individual devices experience time discrepancies or failures. The method may also include steps such as receiving data from a first network, extracting metadata from the data, and processing the metadata to form time information. The time information is then used to synchronize operations across the network, ensuring that events, transactions, or data exchanges are timestamped accurately. This approach is particularly useful in environments where devices operate in different time zones, have inconsistent clocks, or lack access to a centralized time server. By decoupling the metadata time information from device system times, the method provides a robust solution for maintaining temporal consistency in distributed systems.
8. The method as claimed in claim 1, wherein the log data have their timings matched between at least one first network and a second network independently of the specific network times of the individual networks.
This invention relates to synchronizing log data timings across multiple networks, addressing the challenge of correlating events when different networks operate on independent time references. The method involves aligning log data timestamps from at least two networks without relying on their native network times. This ensures accurate event correlation even when networks lack synchronized clocks or operate in environments where time synchronization is impractical. The technique may involve time offset calculations, reference time mapping, or other synchronization mechanisms to reconcile discrepancies between network-specific timestamps. The approach is particularly useful in distributed systems, cybersecurity monitoring, and network diagnostics where precise event sequencing is critical. By decoupling the timing alignment from individual network clocks, the method provides a robust solution for cross-network log analysis, enabling accurate forensic investigations, performance monitoring, and anomaly detection. The invention may also include preprocessing steps to normalize log formats or filter irrelevant data before synchronization. The core innovation lies in its ability to establish a unified temporal framework for logs generated across heterogeneous network environments.
9. The method as claimed claim 1, wherein a signal is conveyed to the first network and, on the basis of the signal, the log data and/or the associated metadata are partially or completely transmitted from the first network to the second network again if the at least one of the transmitted log data and metadata in the second network are incomplete.
This invention relates to data transmission systems, specifically methods for ensuring complete and accurate transfer of log data and associated metadata between networks. The problem addressed is the potential for incomplete or corrupted data transmission between networks, which can lead to data loss or inconsistencies in monitoring, analysis, or troubleshooting processes. The method involves a system with at least two networks, where log data and metadata are initially transmitted from a first network to a second network. If the transmitted data in the second network is found to be incomplete, a signal is sent to the first network. In response to this signal, the first network retransmits the log data and/or metadata, either partially or in full, to the second network. This ensures that the second network receives a complete and accurate dataset. The retransmission may be triggered by a verification process that detects missing or corrupted data in the second network. The method supports reliable data synchronization between networks, particularly in scenarios where log data integrity is critical, such as in network monitoring, security auditing, or system diagnostics. The approach may include mechanisms to identify specific missing or corrupted portions of the data to optimize retransmission efficiency.
11. The apparatus as claimed in claim 10, comprising a forwarding unit in the first network that is designed to continuously detect changes in at least one of the log data and in the associated metadata in comparison with the previously sent log data and metadata and to transmit just the changes to the second network.
12. The apparatus as claimed in claim 10, comprising a second management unit in the second network that is designed to temporarily store the copied log data.
This invention relates to a distributed network system for managing log data, addressing challenges in centralized log storage by improving redundancy and fault tolerance. The system includes a first network with a first management unit that collects log data from multiple sources and a second network with a second management unit. The second management unit is designed to temporarily store a copy of the log data received from the first management unit. This redundancy ensures log data is preserved even if the first network fails, enhancing system reliability. The second management unit may also process or forward the stored log data to other components for analysis or long-term storage. The system is particularly useful in environments requiring high availability, such as cloud computing or enterprise IT infrastructure, where log data loss can disrupt operations or compliance. By distributing log storage across multiple networks, the invention mitigates risks associated with single points of failure and improves data resilience. The temporary storage in the second network allows for flexible handling of log data, including buffering during peak loads or network disruptions.
13. The apparatus as claimed in claim 10, comprising at least one return channel from the receiving unit in the second network to the forwarding unit in the first network that is designed to convey a signal to the first network, wherein, on the basis of the signal, the log data and/or the associated metadata are partially or completely transmitted from the first network to the second network again if at least one of the transmitted log data and metadata in the second network are incomplete.
Cooperative Patent Classification codes for this invention. Click any code to explore related patents in that topic.
September 27, 2018
October 4, 2022
Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.